Cross-site scripting (XSS)

Anti-Malware Security and Brute-Force Firewall, a popular security plugin for WordPress websites, is affected by a reflected cross-site scripting vulnerability whose exploitation would allow threat actors to compromise users withRead More →

Citrix announced the release of security patches for multiple vulnerabilities present in some of its products, including a severe issue in SD-WAN. Tracked as CVE-2022-27505, this flaw was described asRead More →

Cybersecurity specialists report that a Chinese hacking group is exploiting a critical zero-day vulnerability in Zimbra in order to access exposed email inboxes and obtain information related to European governmentsRead More →

A report by cloud security firm Orca Security points to the detection of a set of zero-day vulnerabilities in various Amazon AWS Cloud deployments. The successful exploitation of these errorsRead More →

A team of specialists led by Italian researcher Massimiliano Brolli reported the discovery of three new vulnerabilities affecting Oracle GlassFish and Nokia NetAct. According to the report, two of theseRead More →

Cybersecurity specialists reported the detection of multiple vulnerabilities in routers produced by tech firm Aruba Networks, whose exploitation would allow threat actors to deploy various malicious tasks, including remote codeRead More →

Cybersecurity specialists reported the discovery of at least 15 flaws in Centreon, an open source solution for monitoring applications, systems and networks based on Nagios concepts. According to the report,Read More →